Lucene search
CVE-2022-39954
Improper restriction of XML external entity reference in Fortinet FortiNAC versions allows for arbitrary file reading and denial of service
Show more
| Reporter | Title | Published | Views | Family All 6 |
|---|---|---|---|---|
 | Xxe | 16 Feb 202319:15 | – | prion |
 | CVE-2022-39954 | 16 Feb 202318:06 | – | vulnrichment |
 | FortiNAC - Multiple XML external entity (XXE) injection | 16 Feb 202300:00 | – | fortinet |
 | CVE-2022-39954 | 22 May 202522:06 | – | redhatcve |
 | CVE-2022-39954 | 16 Feb 202318:06 | – | cvelist |
 | CVE-2022-39954 | 16 Feb 202319:15 | – | nvd |
[
{
"vendor": "Fortinet",
"product": "FortiNAC",
"defaultStatus": "unaffected",
"versions": [
{
"versionType": "semver",
"version": "9.4.0",
"lessThanOrEqual": "9.4.1",
"status": "affected"
},
{
"versionType": "semver",
"version": "9.2.0",
"lessThanOrEqual": "9.2.7",
"status": "affected"
},
{
"versionType": "semver",
"version": "9.1.0",
"lessThanOrEqual": "9.1.8",
"status": "affected"
},
{
"versionType": "semver",
"version": "8.8.0",
"lessThanOrEqual": "8.8.11",
"status": "affected"
},
{
"versionType": "semver",
"version": "8.7.0",
"lessThanOrEqual": "8.7.6",
"status": "affected"
},
{
"versionType": "semver",
"version": "8.6.0",
"lessThanOrEqual": "8.6.5",
"status": "affected"
},
{
"versionType": "semver",
"version": "8.5.0",
"lessThanOrEqual": "8.5.4",
"status": "affected"
},
{
"version": "8.3.7",
"status": "affected"
}
]
}
]| Source | Link |
|---|---|
| fortiguard | www.fortiguard.com/psirt/FG-IR-22-304 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo16 Feb 2023 19:15Current
8.9High risk
Vulners AI Score8.9
CVSS37.3 - 9.1
EPSS0.00035
SSVC